|
Step 1
|
Choose .
|
|
Step 2
|
On the AP Join Profile window, click Add.
The Add AP Join Profile window is displayed.
|
|
Step 3
|
In the General tab, enter a name and description for the AP join profile. The name can be ASCII characters from 32 to 126, without leading
and trailing spaces.
|
|
Step 4
|
Check the
LED State
check box to set the LED state of all APs connected to the device to blink, making them easier to locate.
|
|
Step 5
|
In the Client tab and Statistics Timer section, enter the time in seconds that the AP sends its 802.11 statistics to the controller.
|
|
Step 6
|
In the TCP MSS Configuration section, check the Adjust MSS Enable check box to enter value for Adjust MSS. You can enter or update the maximum segment size (MSS) for transient packets that
traverse a router. TCP MSS adjustment enables the configuration of the maximum segment size (MSS) for transient packets that
traverse a router, specifically TCP segments with the SYN bit set.
In a CAPWAP environment, a lightweight AP discovers a device by using CAPWAP discovery mechanisms, and then sends a CAPWAP
join request to the device. The device sends a CAPWAP join response to the AP that allows the AP to join the device.
When the AP joins the device, the device manages its configuration, firmware, control transactions, and data transactions.
|
|
Step 7
|
In the AP tab, you can configure these options:
-
In the General tab, check the Switch Flag check box to enable switches.
-
Check the Power Injector State check box if power injector is being used. Use power injectors to provide flexible powering options for APs, such as local
power, multiport switches with inline power, or multiport power patch panels.
Power Injector Selection parameter enables you to protect your switch port from an accidental overload if the power injector
is inadvertently bypassed.
-
From the Power Injector Type drop-down list, choose power injector type from these options:
-
Installed—This option examines and remembers the MAC address of the currently connected switch port and assumes that a power
injector is connected. Choose this option if your network contains older Cisco 6-Watt switches and you want to avoid possible
overloads by forcing a double-check of any relocated APs.
If you want to configure the switch MAC address, enter the MAC address in theInjector Switch MAC Address text box. If you
want the AP to find the switch MAC address, leave theInjector Switch MAC Address text box blank.
|
Note
|
Each time an AP is relocated, the MAC address of the new switch port fails to match the remembered MAC address, and the AP
remains in low-power mode. You must then physically verify the existence of a power injector and reselect this option to cause
the new MAC address to be remembered.
|
-
Override—This option allows the AP to operate in high-power mode without first verifying a matching MAC address. You can use
this option if your network does not contain any older Cisco 6-W switches that could be overloaded if connected directly to
a 12-W AP. The advantage of this option is that if you relocate the AP, it continues to operate in high-power mode without
any further configuration. The disadvantage of this option is that if the AP is connected directly to a 6-W switch, an overload
occurs.
-
In theInjector Switch MAC field, enter the MAC address of the switch .
-
From the EAP Type drop-down list, choose the EAP type as EAP-FAST , EAP-TLS , or EAP-PEAP.
-
From the AP Authorization Type drop-down list, choose the type as either CAPWAP DTLS + or CAPWAP DTLS.
-
In the Client Statistics ReportingInterval section, enter the interval for 5 GHz and 2.4 GHz radios in seconds.
-
Check the Enable check box to enable extended module.
-
From the Profile Name drop-down list, choose a profile name .
-
Click Save & Apply to Device.
-
In the Hyperlocation tab, check the Enable Hyperlocation check box.
-
Enter the Detection Threshold value to filter out packets with low RSSI. The valid range is –100 dBm to –50 dBm.
-
Enter the Trigger Threshold value to set the number of scan cycles before sending a BAR to clients. The valid range is zero to 99.
-
Enter the Reset Threshold value to reset value in scan cycles after trigger. The valid range is zero to 99.
-
Enter the NTP Server IP address.
-
Click Save & Apply to Device.
-
BLE: If your APs are Bluetooth Low Energy (BLE) enabled, they can transmit beacon messages that are packets of data or attributes
transmitted over a low energy link. These BLE beacons are frequently used for health monitoring, proximity detection, asset
tracking, and in-store navigation. For each AP, you can customize BLE Beacon settings configured globally for all APs.
-
In the BLE tab, enter a value in the BeaconInterval field to indicate how often you want your APs to send out beacon advertisements to nearby devices. The range is from one
to 10, with a default value of one.
-
In the Advertised Attenuation Level field, enter the attenuation level. The range is from 40 to 100, with a default of 59.
-
Click Save & Apply to Device.
-
In the Packet Capture tab, choose an AP Packet Capture Profile from the drop-down list.
-
You can also create a new profile by clicking the + sign.
-
Enter a name and description for the AP packet capture profile.
-
Enter the Buffer Size.
-
Enter the Duration.
-
Enter the Truncate Length information.
-
In the Server IP field, enter the IP address of the TFTP server.
-
In the File Path field, enter the directory path.
-
Enter the username and password details.
-
From the Password Type drop-down list, choose the type.
-
In the Packet Classifiers section, use the option to select or enter the packets to be captured.
-
Click Save.
-
Click Save & Apply to Device.
|
|
Step 8
|
In the Management tab, you can configure these options:
-
In the Device tab, enter the IPv4/IPv6 Address of the TFTP server, TFTP Downgrade section.
-
In the Image File Name field, enter the name of the software image file.
-
From the Facility Value drop-down list, choose the appropriate facility.
-
Enter the IPv4 or IPv6 address of the host.
-
Choose the appropriate Log Trap Value.
-
Enable Telnet, SSH or both configurations, if required.
-
Enable core dump, if required.
-
Click Save & Apply to Device.
-
In the User tab, enter username and password details.
-
Choose the appropriate password type.
-
In the Secret field, enter a custom secret code.
-
Choose the appropriate secret type.
-
Choose the appropriate encryption type.
-
Click Save & Apply to Device.
-
In the Credentials tab, enter local username and password details.
-
Choose the appropriate local password type.
-
Enter 802.1x username and password details.
-
Choose the appropriate 802.1x password type.
-
Enter the time in seconds after which the session should expire.
-
Enable local credentials, 802.1x credentials, or both as required.
-
Click Save & Apply to Device.
-
In the CDPInterface tab, enable the CDP state, if required.
-
Click Save & Apply to Device.
|
|
Step 9
|
In the Rogue AP tab, check the Rogue Detection check box to enable rogue detection.
|
|
Step 10
|
In the Rogue Detection Minimum RSSI field, enter the RSSI value.
This field specifies the minimum RSSI value for which a Rogue AP should be reported. All Rogue APs with RSSI lower than what
is configured will not be reported to controller.
|
|
Step 11
|
In the Rogue Detection TransientInterval field, enter the transient interval value.
This field indicates how long the Rogue AP should be seen before reporting the controller.
|
|
Step 12
|
In the Rogue Detection ReportInterval field, enter the report interval value.
This field indicates the frequency (in seconds) of Rogue reports sent from AP to controller.
|
|
Step 13
|
Check the
Rogue Containment Automatic Rate Selection
check box to enable rogue containment automatic rate selection.
The AP selects the best rate for the target Rogue, based on its RSSI.
|
|
Step 14
|
Check the
Auto Containment on FlexConnect Standalone
check box to enable the feature.
The AP continues containment if it moves to FlexConnect standalone mode.
|
|
Step 15
|
Click Save & Apply to Device.
|
Feedback